www.portalfinancialapp-controlledsolver.com/dae9aad22dfd2710a4a7d8a5e718b093/?cont=QERldmlsbWFzazA5&token=0e4d22d73822810cfef8f3be116b30780103085802e81167e5fbdb91914dc16e8ddbbae8ec19a41937cc0a7dda0a387c2162b8c55e97fcf870e963d6a0b4aa07
91.229.90.158302 Found 707 B URL User Request GET HTTP/2 www.portalfinancialapp-controlledsolver.com/dae9aad22dfd2710a4a7d8a5e718b093/?cont=QERldmlsbWFzazA5&token=0e4d22d73822810cfef8f3be116b30780103085802e81167e5fbdb91914dc16e8ddbbae8ec19a41937cc0a7dda0a387c2162b8c55e97fcf870e963d6a0b4aa07
IP 91.229.90.158:443
Certificate IssuerLet's Encrypt
Subjectwww.portalfinancialapp-controlledsolver.com
FingerprintEA:6B:16:2A:A7:FB:0E:DB:D4:90:D8:74:C2:ED:F5:D6:FB:71:06:B2
ValiditySat, 29 Apr 2023 01:31:12 GMT - Fri, 28 Jul 2023 01:31:11 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert quad9 Sinkholed
GET /dae9aad22dfd2710a4a7d8a5e718b093/?cont=QERldmlsbWFzazA5&token=0e4d22d73822810cfef8f3be116b30780103085802e81167e5fbdb91914dc16e8ddbbae8ec19a41937cc0a7dda0a387c2162b8c55e97fcf870e963d6a0b4aa07 HTTP/1.1
Host: www.portalfinancialapp-controlledsolver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 29 Apr 2023 03:36:06 GMT
server: LiteSpeed
location: https://www.portalfinancialapp-controlledsolver.com/dae9aad22dfd2710a4a7d8a5e718b093/?cont=QERldmlsbWFzazA5&token=0e4d22d73822810cfef8f3be116b30780103085802e81167e5fbdb91914dc16e8ddbbae8ec19a41937cc0a7dda0a387c2162b8c55e97fcf870e963d6a0b4aa07
vary: User-Agent
www.portalfinancialapp-controlledsolver.com/dae9aad22dfd2710a4a7d8a5e718b093/?cont=QERldmlsbWFzazA5&token=0e4d22d73822810cfef8f3be116b30780103085802e81167e5fbdb91914dc16e8ddbbae8ec19a41937cc0a7dda0a387c2162b8c55e97fcf870e963d6a0b4aa07
91.229.90.158302 Found 0 B URL User Request GET HTTP/2 www.portalfinancialapp-controlledsolver.com/dae9aad22dfd2710a4a7d8a5e718b093/?cont=QERldmlsbWFzazA5&token=0e4d22d73822810cfef8f3be116b30780103085802e81167e5fbdb91914dc16e8ddbbae8ec19a41937cc0a7dda0a387c2162b8c55e97fcf870e963d6a0b4aa07
IP 91.229.90.158:443
Certificate IssuerLet's Encrypt
Subjectwww.portalfinancialapp-controlledsolver.com
FingerprintEA:6B:16:2A:A7:FB:0E:DB:D4:90:D8:74:C2:ED:F5:D6:FB:71:06:B2
ValiditySat, 29 Apr 2023 01:31:12 GMT - Fri, 28 Jul 2023 01:31:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /dae9aad22dfd2710a4a7d8a5e718b093/?cont=QERldmlsbWFzazA5&token=0e4d22d73822810cfef8f3be116b30780103085802e81167e5fbdb91914dc16e8ddbbae8ec19a41937cc0a7dda0a387c2162b8c55e97fcf870e963d6a0b4aa07 HTTP/1.1
Host: www.portalfinancialapp-controlledsolver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
set-cookie: PHPSESSID=c75dbb8aad20635e644ad4fdd6bd3c46; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
location: ../index.php
content-type: text/html; charset=UTF-8
content-length: 0
date: Sat, 29 Apr 2023 03:36:07 GMT
server: LiteSpeed
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.portalfinancialapp-controlledsolver.com/index.php
91.229.90.158302 Found 0 B URL User Request GET HTTP/2 www.portalfinancialapp-controlledsolver.com/index.php
IP 91.229.90.158:443
Certificate IssuerLet's Encrypt
Subjectwww.portalfinancialapp-controlledsolver.com
FingerprintEA:6B:16:2A:A7:FB:0E:DB:D4:90:D8:74:C2:ED:F5:D6:FB:71:06:B2
ValiditySat, 29 Apr 2023 01:31:12 GMT - Fri, 28 Jul 2023 01:31:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /index.php HTTP/1.1
Host: www.portalfinancialapp-controlledsolver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=c75dbb8aad20635e644ad4fdd6bd3c46
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
location: 9c33da4c0f9c321e558f22011ec9f0a7?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
content-type: text/html; charset=UTF-8
content-length: 0
date: Sat, 29 Apr 2023 03:36:08 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
91.229.90.158301 Moved Permanently 707 B URL User Request GET HTTP/2 www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
IP 91.229.90.158:443
Certificate IssuerLet's Encrypt
Subjectwww.portalfinancialapp-controlledsolver.com
FingerprintEA:6B:16:2A:A7:FB:0E:DB:D4:90:D8:74:C2:ED:F5:D6:FB:71:06:B2
ValiditySat, 29 Apr 2023 01:31:12 GMT - Fri, 28 Jul 2023 01:31:11 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert quad9 Sinkholed
GET /9c33da4c0f9c321e558f22011ec9f0a7?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f HTTP/1.1
Host: www.portalfinancialapp-controlledsolver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=c75dbb8aad20635e644ad4fdd6bd3c46
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Sat, 29 Apr 2023 03:36:08 GMT
server: LiteSpeed
location: https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
vary: User-Agent
X-Firefox-Spdy: h2
www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
91.229.90.158200 OK 1.9 kB URL User Request GET HTTP/2 www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
IP 91.229.90.158:443
Certificate IssuerLet's Encrypt
Subjectwww.portalfinancialapp-controlledsolver.com
FingerprintEA:6B:16:2A:A7:FB:0E:DB:D4:90:D8:74:C2:ED:F5:D6:FB:71:06:B2
ValiditySat, 29 Apr 2023 01:31:12 GMT - Fri, 28 Jul 2023 01:31:11 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (650), with CRLF line terminators
Hash 80b24239a1b03e0000265145656e2bb2
a12f3e3ac1a011628580cadb3647c7c355869a0d
3723a5f21a9c4efdec29a9ab4ea401be206cfe25d534c4ab8b7c02fcdb7866d6
Analyzer Verdict Alert quad9 Sinkholed
GET /9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f HTTP/1.1
Host: www.portalfinancialapp-controlledsolver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=c75dbb8aad20635e644ad4fdd6bd3c46
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 1911
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Sat, 29 Apr 2023 03:36:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/app/sour3xe.js
91.229.90.158200 OK 375 B URL GET HTTP/2 www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/app/sour3xe.js
IP 91.229.90.158:443
Requested by https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Certificate IssuerLet's Encrypt
Subjectwww.portalfinancialapp-controlledsolver.com
FingerprintEA:6B:16:2A:A7:FB:0E:DB:D4:90:D8:74:C2:ED:F5:D6:FB:71:06:B2
ValiditySat, 29 Apr 2023 01:31:12 GMT - Fri, 28 Jul 2023 01:31:11 GMT
File type ASCII text, with CRLF line terminators
Hash e49c561f1eefe165091de8daeb4619a8
c5130406ae8b9c67a6cc7d4ff47804153517fafa
821fe433a820162442f0f5f104849bc4257482005a5fe8b79dc06fa44b47ec74
Analyzer Verdict Alert quad9 Sinkholed
GET /9c33da4c0f9c321e558f22011ec9f0a7/app/sour3xe.js HTTP/1.1
Host: www.portalfinancialapp-controlledsolver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Cookie: PHPSESSID=c75dbb8aad20635e644ad4fdd6bd3c46
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 03:36:09 GMT
content-type: application/javascript
last-modified: Sat, 29 Apr 2023 03:36:08 GMT
etag: "2bd-644c90a8-768bf7e8c644dd2c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 375
date: Sat, 29 Apr 2023 03:36:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/app/cash.css
91.229.90.158200 OK 62 kB URL GET HTTP/2 www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/app/cash.css
IP 91.229.90.158:443
Requested by https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Certificate IssuerLet's Encrypt
Subjectwww.portalfinancialapp-controlledsolver.com
FingerprintEA:6B:16:2A:A7:FB:0E:DB:D4:90:D8:74:C2:ED:F5:D6:FB:71:06:B2
ValiditySat, 29 Apr 2023 01:31:12 GMT - Fri, 28 Jul 2023 01:31:11 GMT
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash c09b7df3d01658b853f8f0d9c4b2663e
cbf7055cdd8577076577783443dde0d313fb1bc9
f4f900b652c87f5df349a8c3dc00245025e8fb238c9f4fcdd94f2143bc9292e3
Analyzer Verdict Alert quad9 Sinkholed
GET /9c33da4c0f9c321e558f22011ec9f0a7/app/cash.css HTTP/1.1
Host: www.portalfinancialapp-controlledsolver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Cookie: PHPSESSID=c75dbb8aad20635e644ad4fdd6bd3c46
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 03:36:09 GMT
content-type: text/css
last-modified: Sat, 29 Apr 2023 03:36:08 GMT
etag: "3b8e3-644c90a8-6de4906aecb897f3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 62027
date: Sat, 29 Apr 2023 03:36:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 57b6826e91b38d7895dc189611f378b0
fd5802e9d6b87030d57ce42a2f322503f67ea1c2
0f0e1cc5ec43fb1e821b1ce3b28774859a39821b3fccbd09eb5f1448c1a62f26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 03:36:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
142.250.74.106200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP 142.250.74.106:443
Requested by https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:8B:BB:40:DD:1D:5B:E9:7B:AA:CC:94:45:44:7F:FD:56:6E:E4:60
ValidityMon, 03 Apr 2023 08:24:24 GMT - Mon, 26 Jun 2023 08:24:23 GMT
File type ASCII text, with very long lines (32058)
Hash fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portalfinancialapp-controlledsolver.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Apr 2023 20:44:48 GMT
expires: Sun, 21 Apr 2024 20:44:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 543081
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 57b6826e91b38d7895dc189611f378b0
fd5802e9d6b87030d57ce42a2f322503f67ea1c2
0f0e1cc5ec43fb1e821b1ce3b28774859a39821b3fccbd09eb5f1448c1a62f26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 03:36:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cash-f.squarecdn.com/static/fonts/cashmarket/cash-market-rounded-regular.woff2
151.101.129.49200 OK 34 kB URL GET HTTP/2 cash-f.squarecdn.com/static/fonts/cashmarket/cash-market-rounded-regular.woff2
IP 151.101.129.49:443
Requested by https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Certificate IssuerLet's Encrypt
Subject*.squarecdn.com
FingerprintD6:8C:80:10:20:71:66:E2:06:02:04:90:1D:74:F0:01:AB:EA:6E:76
ValiditySun, 02 Apr 2023 16:01:09 GMT - Sat, 01 Jul 2023 16:01:08 GMT
File type Web Open Font Format (Version 2), CFF, length 33692, version 10.131\012- data
Hash 438232647d9913a48305142c9fe7721b
737a0938c78fb899dc0914b8b1abd300d00bca2a
685ee4d48b70deff7ca010a754cb46e1278ba8d0cb82e4ef53d9cbbb2574f167
GET /static/fonts/cashmarket/cash-market-rounded-regular.woff2 HTTP/1.1
Host: cash-f.squarecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.portalfinancialapp-controlledsolver.com
Connection: keep-alive
Referer: https://www.portalfinancialapp-controlledsolver.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: msN065Sdiu7CEAM+xlyYBDSRfGD3kCowFOXSzgB0I78CUMXD5ChE3ge1iCM42A4SN28vIrpRkDU=
x-amz-request-id: H3G1J8KFT84S1D4S
last-modified: Wed, 27 Jul 2022 23:01:00 GMT
etag: "438232647d9913a48305142c9fe7721b"
cache-control: max-age=630720000, public
content-encoding: gzip
expires: Fri, 26 Jul 2024 23:00:52 GMT
x-amz-version-id: t_qAyeSbbFuoqIxFZoYm7mSfsFFfd.25
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
date: Sat, 29 Apr 2023 03:36:09 GMT
via: 1.1 varnish
age: 933046
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1682739369.448094,VS0,VE1
access-control-allow-origin: *
content-length: 33725
X-Firefox-Spdy: h2
cash-f.squarecdn.com/static/fonts/cashmarket/cash-market-rounded-medium.woff2
151.101.129.49200 OK 36 kB URL GET HTTP/2 cash-f.squarecdn.com/static/fonts/cashmarket/cash-market-rounded-medium.woff2
IP 151.101.129.49:443
Requested by https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Certificate IssuerLet's Encrypt
Subject*.squarecdn.com
FingerprintD6:8C:80:10:20:71:66:E2:06:02:04:90:1D:74:F0:01:AB:EA:6E:76
ValiditySun, 02 Apr 2023 16:01:09 GMT - Sat, 01 Jul 2023 16:01:08 GMT
File type Web Open Font Format (Version 2), CFF, length 36144, version 10.131\012- data
Hash bb0a7911452d2d17b9bcf766d63e2602
4cd7ab1c0e4b59d2df6b6a0df4675ab3c6503565
92330a2fba008003258972910cef814136d0d3d1307b4a7c4c039d4c41231038
GET /static/fonts/cashmarket/cash-market-rounded-medium.woff2 HTTP/1.1
Host: cash-f.squarecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.portalfinancialapp-controlledsolver.com
Connection: keep-alive
Referer: https://www.portalfinancialapp-controlledsolver.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: n8Df54FDIlyTiSQnEXhxU9cpQUyAEFUGe6HCaSTP4ZNRgI9f9CIB5FKV5aoyv9ULW9cOSIwn/KE=
x-amz-request-id: K5HNJT0BB2CXD32T
last-modified: Wed, 27 Jul 2022 23:01:04 GMT
etag: "bb0a7911452d2d17b9bcf766d63e2602"
cache-control: max-age=630720000, public
content-encoding: gzip
expires: Fri, 26 Jul 2024 23:00:52 GMT
x-amz-version-id: O8bb9rSpwUB4Zhcbv6ipjl3u3rw6l.uH
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
date: Sat, 29 Apr 2023 03:36:09 GMT
via: 1.1 varnish
age: 962025
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1682739369.451941,VS0,VE1
access-control-allow-origin: *
content-length: 36116
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68 472 B IP 104.18.32.68:0
Hash 3c2bb66475047f2821970e21d2671d87
f89439d34995e327035c3d9a50571fa128243244
a590e6aa64619273355475ef770aa722572b0f1219a1018fba3d8e4c8a2a6d9e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Apr 2023 03:36:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 26 Apr 2023 05:40:08 GMT
Expires: Wed, 03 May 2023 05:40:07 GMT
Etag: "f89439d34995e327035c3d9a50571fa128243244"
Cache-Control: max-age=352437,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7bf47fc48ca4b4ed-OSL
ocsp.sectigo.com/
104.18.32.68 472 B IP 104.18.32.68:0
Hash 3c2bb66475047f2821970e21d2671d87
f89439d34995e327035c3d9a50571fa128243244
a590e6aa64619273355475ef770aa722572b0f1219a1018fba3d8e4c8a2a6d9e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Apr 2023 03:36:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 26 Apr 2023 05:40:08 GMT
Expires: Wed, 03 May 2023 05:40:07 GMT
Etag: "f89439d34995e327035c3d9a50571fa128243244"
Cache-Control: max-age=352437,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7bf47fc48f62b4f3-OSL
devilsms.live/cleave.js
199.188.200.254200 OK 18 kB IP 199.188.200.254:443
Requested by https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (1712)
Hash fe9f66e28ad0fde897ddcb9571324491
e5ab8ed2bad2578458397898778be698dff70917
ece3c9456921c261029e7ae1b7eddd2265e8afdf1aeb78f9eafad2ea55d5e92f
GET /cleave.js HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portalfinancialapp-controlledsolver.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 03:36:09 GMT
content-type: application/javascript
last-modified: Sun, 30 Jan 2022 13:07:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18428
date: Sat, 29 Apr 2023 03:36:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
devilsms.live/clve-min.js
199.188.200.254200 OK 51 kB URL GET HTTP/2 devilsms.live/clve-min.js
IP 199.188.200.254:443
Requested by https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 724ad5d75674097f5d14e70982a3bc6e
87146103e33be6cdf8d828351685c70f2a6cb7e3
d1a51f6f6c798129732b8ae1c654d6a68af918bb63e05b45c75cf4c614c27260
GET /clve-min.js HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portalfinancialapp-controlledsolver.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 03:36:10 GMT
content-type: application/javascript
last-modified: Mon, 07 Feb 2022 11:17:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 51069
date: Sat, 29 Apr 2023 03:36:10 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
cash.app/favicon.ico
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Certificate IssuerGlobalSign nv-sa
Subjectcash.app
Fingerprint0D:21:3E:F1:43:0B:B5:15:CA:D9:88:08:C5:06:19:B5:AF:15:72:0D
ValidityMon, 19 Dec 2022 22:10:15 GMT - Sat, 20 Jan 2024 22:10:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: cash.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portalfinancialapp-controlledsolver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
set-cookie: __nsid=26621732-fb85-40b5-980c-98f4eb1ec014; Path=/; Expires=Sun, 28-Apr-2024 03:36:11 GMT; Max-Age=31536000; Secure; HttpOnly
cache-control: max-age=3600
content-encoding: gzip
x-sq-dc: aws
x-sq-region: us-east-1
strict-transport-security: max-age=631152000; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 29 Apr 2023 03:36:11 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1682739371.132828,VS0,VE441
vary: Accept-Encoding
X-Firefox-Spdy: h2
cash.app/icon-196.png
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://www.portalfinancialapp-controlledsolver.com/9c33da4c0f9c321e558f22011ec9f0a7/?cont=QERldmlsbWFzazA5&token=20018d70af16c50b00277e9cf1b22b15b0ce67700d52c1390dc03cc5bdbb460e744abf4b54e359158950dfa20da3e8db3f2aaa5318f3d1fb14870978aeafea7f
Certificate IssuerGlobalSign nv-sa
Subjectcash.app
Fingerprint0D:21:3E:F1:43:0B:B5:15:CA:D9:88:08:C5:06:19:B5:AF:15:72:0D
ValidityMon, 19 Dec 2022 22:10:15 GMT - Sat, 20 Jan 2024 22:10:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /icon-196.png HTTP/1.1
Host: cash.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portalfinancialapp-controlledsolver.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
set-cookie: __nsid=bdacffff-402b-4761-b61f-45bf119db6e4; Path=/; Expires=Sun, 28-Apr-2024 03:36:11 GMT; Max-Age=31536000; Secure; HttpOnly
cache-control: max-age=3600
content-encoding: gzip
x-sq-dc: aws
x-sq-region: us-east-1
strict-transport-security: max-age=631152000; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 29 Apr 2023 03:36:11 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1682739371.135774,VS0,VE443
vary: Accept-Encoding
X-Firefox-Spdy: h2